Wondering the correct procedure after purchasing DEDICATED SSL:
Should you disable UNIVERSAL SSL after purchasing DEDICATED SSL? Any other changes to the CRYPTO page neccesary to activate it?
Do you still need to create and install ORIGIN CERTIFICATE at your host like with UNIVERSAL SSL? (To have both links in the chain encrypted with SSL)
If the ORIGIN CERTIFICATE was created using the CF CRYPTO DASHBOARD, does one need to GENERATE A NEW CSR in cPanel, or is that only necessary if you create the KEY and CERTIFICATE from cPanel instead of CF DASHBOARD? (Both KEY and CERTIFICATE is uploaded/installed, and SSL for domain configured in cPanel, but no CSR ON SERVER is listed.)
Freshman trying to get the basics of SSL here.
Many thanks, Christoffer
Thanks for clarifying. The dedicated cert is showing once I turned of UNIVERSAL SSL, but it might have been a time issue as well - not sure.
Second question, true - I used CF to issue a CSR - both key and cert, installed both on origin via cPanel. Not sure how to verify that this works/is operative but seems fine - all green checkmarks.
Again, thanks for the quick reply. Christoffer
If you set your SSL mode under SSL/TLS app to “Full (Strict)” and your site still loads, that means that Cloudflare is able to securely connect to your server. If it can’t, your site will fail to load, because secure communication could not be made with the origin (which is the point of this mode, that everyone SHOULD use)
OK, understand. Full - Strict demands that the whole chain is secured. Seems to be working fine. Security is a big topic for a freshman as myself. Thanks for explaining so well. C
This topic was automatically closed after 30 days. New replies are no longer allowed.